-
Suggestion
-
Resolution: Unresolved
-
None
-
None
-
None
-
22
-
Derived from BSERV-9657.
Summary
When migrating between external user directories that are configured as Read Only with local groups, any users that existed in both directories and had custom local groups set will lose those local groups when the old user directory is disabled.
Steps to Reproduce
- Connect Bitbucket to LDAP and sync a user, let's call her Susan. At this point, Susan should be a member of the default users group, e.g. bitbucket-users
- Create a new group in Bitbucket, bitbucket-local-test, and add Susan to that group
- Connect Bitbucket to a new ActiveDirectory server, also containing the user Susan
- Sync the new directory. At this stage, Susan should be a member of bitbucket-users, of your bitbucket-local-test group, and of whatever other groups were defined in LDAP and your new ActiveDirectory
- Disconnect the original LDAP server and check Susan's group memberships
Expected Results
Using the above example, Susan should continue to be a member of the bitbucket-local-test group. In other words, a user's local groups should be retained, independent of the source user directory
Actual Results
Susan's membership to the bitbucket-local-test group disappears. Local groups are lost during a migration between external directories.
Workaround
Re-add the users to their local directories, or manage them fully in the external user directory server and do not use the Read only with local groups setting
- is duplicated by
-
BSERV-9657 When migrating between external user directories, external users that existed in both will lose locally set groups
-
- Closed
-
[CWD-4886] When migrating between external user directories, external users that existed in both will lose locally set groups
Support reference count | Original: 21 | New: 22 |
Support reference count | New: 21 |
Workflow | Original: JAC Suggestion Workflow [ 3388258 ] | New: JAC Suggestion Workflow 3 [ 3630134 ] |
Workflow | Original: Simplified Crowd Development Workflow v2 [ 1957119 ] | New: JAC Suggestion Workflow [ 3388258 ] |
Issue Type | Original: Improvement [ 4 ] | New: Suggestion [ 10000 ] |
Status | Original: Needs Verification [ 10004 ] | New: Gathering Interest [ 11772 ] |
Symptom Severity | Original: Minor [ 14432 ] | New: Severity 3 - Minor [ 15832 ] |
Workflow | Original: Simplified Crowd Development Workflow v2 - restricted [ 1772403 ] | New: Simplified Crowd Development Workflow v2 [ 1957119 ] |
Issue Type | Original: Bug [ 1 ] | New: Improvement [ 4 ] |
Status | Original: Open [ 1 ] | New: Needs Verification [ 10004 ] |
Link |
New:
This issue is duplicated by |
Description |
New:
Derived from [ h3. Summary When migrating between external user directories that are configured as _Read Only with local groups_, any users that existed in both directories and had custom local groups set will lose those local groups when the old user directory is disabled. h3. Steps to Reproduce # Connect Bitbucket to LDAP and sync a user, let's call her Susan. At this point, Susan should be a member of the default users group, e.g. *bitbucket-users* # Create a new group in Bitbucket, *bitbucket-local-test*, and add Susan to that group # Connect Bitbucket to a new ActiveDirectory server, also containing the user _Susan_ # Sync the new directory. At this stage, Susan should be a member of *bitbucket-users*, of your *bitbucket-local-test* group, and of whatever other groups were defined in LDAP and your new ActiveDirectory # Disconnect the original LDAP server and check Susan's group memberships h3. Expected Results Using the above example, Susan should continue to be a member of the *bitbucket-local-test* group. In other words, a user's local groups should be retained, independent of the source user directory h3. Actual Results Susan's membership to the *bitbucket-local-test* group disappears. Local groups are lost during a migration between external directories. h3.Workaround Re-add the users to their local directories, or manage them fully in the external user directory server and do not use the _Read only with local groups_ setting |